| CODE | INS5007 | ||||||||||||
| TITLE | Risk Management in Emerging Technologies | ||||||||||||
| UM LEVEL | 05 - Postgraduate Modular Diploma or Degree Course | ||||||||||||
| MQF LEVEL | 7 | ||||||||||||
| ECTS CREDITS | 5 | ||||||||||||
| DEPARTMENT | Insurance and Risk Management | ||||||||||||
| DESCRIPTION | In this study-unit, students familiarize themselves with data processing systems, common architecture solutions, cloud-computing and other emerging technologies with a focus on identifying IT risks and determining their implications to organisations and core operations. The study-unit will explore the internal controls in the Process of Auditing Information Systems - that is developing the knowledge necessary to provide audit services in accordance with IT audit standards to assist the enterprise with protecting and controlling information systems. Then the study-unit will focus on Governance and Management of IT - that is providing assurance that the organization has the structure, policies, accountability, mechanisms and monitoring practices in place to achieve the requirements of corporate governance of IT. Moreover, it explores Information Systems Acquisition, that is the Development and Implementation - Understanding and providing assurance that the practices for the acquisition, development, testing and implementation of information systems meet the enterprise's strategies and objectives. Study-unit Aims: To enable students to identify and evaluate logical (technological) risks and control mechanisms within risk management context and to analyse the technical aspects of information technology, the management of information technology and its application to organisations. Moreover, to prepare students to be able to work in challenging environment of IT Risk Management and Audit Management of various entities. The objective is to give students an appreciation of the terminology and tools used in this environment to complete an IT audit/risk management of systems and applications. The study-unit will also focus on general computer control, application level control introducing a risk-based management approach. Learning Outcomes: 1. Knowledge & Understanding By the end of the study-unit the student will be able to: i) Identify technological risks and controls; ii) Determine when technological risks may be acceptable to organisations; iii) Evaluate existing controls; iv) Identify tools and techniques to evaluate logical controls and risk measures. 2. Skills By the end of the study-unit the student will be able to: i) Evaluate implications of technological risks and the control frameworks within organisations within the risk appetite and tolerance of stakeholders; ii) Identify ineffective technological controls and the implications; iii) Identify mitigation techniques. Main Text/s and any supplementary readings: Sutton, D. (2014).Information Risk Management. BCS, The Chartered Institute for IT.November 26, 2014.ISBN-13: 978-1780172651 |
||||||||||||
| STUDY-UNIT TYPE | Lecture | ||||||||||||
| METHOD OF ASSESSMENT |
|
||||||||||||
| LECTURER/S | Christian Bonnici West |
||||||||||||
|
The University makes every effort to ensure that the published Courses Plans, Programmes of Study and Study-Unit information are complete and up-to-date at the time of publication. The University reserves the right to make changes in case errors are detected after publication.
The availability of optional units may be subject to timetabling constraints. Units not attracting a sufficient number of registrations may be withdrawn without notice. It should be noted that all the information in the description above applies to study-units available during the academic year 2024/5. It may be subject to change in subsequent years. |
|||||||||||||